On Monday 31 December 2012 19:44:32 Rich Freeman wrote:
> The certificates that Gentoo distributes have at least been vouched
> for by somebody who is a part of our community, which is more than can
> be said for most of the upstream certificates.
mmm, Gentoo ships ca-certificates which comes dire
On 1/1/13 2:51 AM, Dirkjan Ochtman wrote:
> IMO it would probably be good to limit our CA roots to Mozilla's
> libnss selection by default and perhaps add a packaged selection of
> secondary CA's (like CACert) for those who are so inclined.
I think that's a good idea: make it easy to only use the
On Tue, Jan 1, 2013 at 5:51 AM, Dirkjan Ochtman wrote:
> On Tue, Jan 1, 2013 at 1:44 AM, Rich Freeman wrote:
>> The certificates that Gentoo distributes have at least been vouched
>> for by somebody who is a part of our community, which is more than can
>> be said for most of the upstream certifi
On Tue, Jan 1, 2013 at 5:51 AM, Dirkjan Ochtman wrote:
> On Tue, Jan 1, 2013 at 1:44 AM, Rich Freeman wrote:
>> The certificates that Gentoo distributes have at least been vouched
>> for by somebody who is a part of our community, which is more than can
>> be said for most of the upstream certifi
On Tue, Jan 1, 2013 at 1:44 AM, Rich Freeman wrote:
> The certificates that Gentoo distributes have at least been vouched
> for by somebody who is a part of our community, which is more than can
> be said for most of the upstream certificates.
And you think "vouched for" by some community member
On Mon, Dec 31, 2012 at 9:42 AM, Tobias Klausmann wrote:
> Now before you reply, RTFA. Also note that while my own opinion
> on the matter is irrelevant, I _do_ think that his concerns need
> to be addressed, particularly the second half of his statement.
SSL Certificate Authorities are a mess.
On Mon, 31 Dec 2012 15:42:39 +0100
Tobias Klausmann wrote:
> I _do_ think that his concerns need
> to be addressed, particularly the second half of his statement.
Whilst I agree that if it does debians system shouldn't undermine
mozillas. I think the latest efforts are a pointless bandaid but I
Hey,
Ryan Sleevi, who's working on Chromium and is familiar with other
project's Root Cert programs has written an article on how he
perceives assorted distributions handle Root CAs:
https://plus.google.com/u/0/105761279104103278252/posts/eVdB6X3NpPg
"""
[...]
Debian: From [5]. According to READ
